Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2020 01
Ran by user (23-05-2020 07:59:58)
Running from C:\Users\user\Desktop
Windows 7 Professional Service Pack 1 (X64) (2015-05-27 08:34:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2985094146-353643522-339492997-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-2985094146-353643522-339492997-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2985094146-353643522-339492997-1005 - Limited - Enabled)
Temp (S-1-5-21-2985094146-353643522-339492997-1006 - Administrator - Enabled) => C:\Users\Temp
user (S-1-5-21-2985094146-353643522-339492997-1000 - Administrator - Enabled) => C:\Users\user

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\{C1F3739C-D31D-4062-8788-29261C4A2A68}) (Version: 12.2.4.194 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.0 - Sereby Corporation)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7734 - AVAST Software)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.3.2405 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Cisco WebEx Meetings (HKU\S-1-5-21-2985094146-353643522-339492997-1000\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
Cisco WebEx Meetings (HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
Conexant HD Audio (HKLM-x32\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 1.0.54.0 - Conexant)
Configuration Manager Client (HKLM\...\{8864FB91-94EE-4F16-A144-0D82A232049D}) (Version: 5.00.7958.1000 - Microsoft Corporation) Hidden
Convert AVI to MP4 (HKLM-x32\...\{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1) (Version: - convertavitomp4.com)
Dassault Systemes Software B20 (HKLM\...\Dassault Systemes B20_0) (Version: - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dell System Detect (HKU\S-1-5-21-2985094146-353643522-339492997-1000\...\73f463568823ebbe) (Version: 6.1.0.3 - Dell)
Dell System Detect (HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\...\73f463568823ebbe) (Version: 6.1.0.3 - Dell)
DVDStyler v3.0.3 (HKLM-x32\...\DVDStyler_is1) (Version: - Thüring IT-Consulting)
FreeCAD 0.17 - A free open source CAD system (HKLM\...\FreeCAD 0.17) (Version: 0.17.13528 - Juergen Riegel)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3040 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
JPview 1.2 (HKLM-x32\...\JPview) (Version: 1.2 - Peter Morling)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Moveslink2 (HKU\S-1-5-21-2985094146-353643522-339492997-1000\...\72ba98056758d55b) (Version: 1.5.0.318 - Suunto)
Moveslink2 (HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\...\72ba98056758d55b) (Version: 1.5.0.318 - Suunto)
Pro Cycling Manager - Season 2014 version 1.4.0.1 (HKLM-x32\...\Pro Cycling Manager 2014_is1) (Version: 1.4.0.1 - Cyanide)
Prusa3D version 2.2.8 (HKLM\...\Prusa3D_is1) (Version: 2.2.8 - Prusa Research s.r.o.)
PrusaControl version 0.9.4.415_beta (HKLM\...\{92AE905A-ABAD-43C4-ACA3-AF62E2B32B5C}_is1) (Version: 0.9.4.415_beta - Prusa Research s.r.o.)
PrusaSlicer version 2.1.1 (HKLM\...\PrusaSlicer_is1) (Version: 2.1.1 - Prusa Research s.r.o.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0019 - Realtek)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shareaza 2.7.10.2 (HKLM\...\Shareaza_is1) (Version: 2.7.10.2 - Shareaza Development Team)
Slic3r Prusa Edition version 1.41.3 (HKLM\...\Slic3r Prusa Edition_is1) (Version: 1.41.3 - Prusa Research s.r.o.)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20768 - TeamViewer)
TeamViewer 8 (MSI Wrapper) (HKLM-x32\...\{ED4FCB8B-B4BC-4718-A5A1-8DD78107D6AB}) (Version: 8.0.20768 - TeamViewer)
Techgzone 0xc000007b fixer 1.00 (HKLM-x32\...\Techgzone 0xc000007b fixer 1.00) (Version: 1.00 - Techgzone.com)
TEncoder Video Converter version 4.5.10 (HKLM-x32\...\{7B1F9D22-568D-4109-B128-040BF8A932FC}_is1) (Version: 4.5.10 - ozok)
VBA (3821b) (HKLM-x32\...\{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}) (Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Driver Package - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Windows Driver Package - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Windows Driver Package - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
Windows Firewall Configuration Provider (HKLM\...\{109A5A16-E09E-4B82-A784-D1780F1190D6}) (Version: 1.2.3412.0 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{18D11ED9-1264-48A1-9E14-20F2C633242B}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{30FC662A-D72A-4F79-B63A-ACD4FBFE68A3}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{34791E02-51DC-4CF4-9E34-018166D91D0E}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{D73ABD28-3A2A-4E36-AD6F-2AA8F011FBE3}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{E1A67AE5-7041-4AE1-94F7-DE03EF759E27}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821_Classes\CLSID\{E9B2EF9B-4A0C-451E-801F-257861B87FAD}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{18D11ED9-1264-48A1-9E14-20F2C633242B}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{30FC662A-D72A-4F79-B63A-ACD4FBFE68A3}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{34791E02-51DC-4CF4-9E34-018166D91D0E}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{D73ABD28-3A2A-4E36-AD6F-2AA8F011FBE3}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{E1A67AE5-7041-4AE1-94F7-DE03EF759E27}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2985094146-353643522-339492997-1000_Classes\CLSID\{E9B2EF9B-4A0C-451E-801F-257861B87FAD}\localserver32 -> C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-21] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-21] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-21] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-05-21] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-22] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\user\Desktop\DESIRE\Marilyn Files\OneDrive - DSV\Desktop\Need help to the new Global Desktop.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://dsvcentral.dsv.com/community/newglobaldesktop/Pages/Home.aspx

==================== Loaded Modules (Whitelisted) =============

2019-09-14 15:22 - 2016-09-12 15:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2013-04-23 08:04 - 2009-12-26 03:52 - 000015360 _____ () [File not signed] C:\Windows\System32\KOAYQJ_L.DLL
2015-06-18 16:15 - 2014-06-25 05:42 - 000273920 _____ (Lexmark International Inc.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\LMUD1N4C.DLL
2016-05-07 19:13 - 2016-05-07 19:13 - 000796672 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6229_none_88dcc0bf2fb1b808\MSVCR80.dll
2015-06-01 10:18 - 2011-08-29 02:49 - 000080384 _____ (Monotype Imaging Inc.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\KOAYQJ_P.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\user\Downloads:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\user\Downloads\misc:Shareaza.GUID [16]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\bcn.cat -> hxxps://bcn.cat
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\dfdstransport.com -> hxxp://dfdstransport.com
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\dfdstransport.dk -> hxxp://dfdstransport.dk
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\dfdstransport.net -> hxxp://dfdstransport.net
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\dsv.com -> hxxp://archive.dsv.com
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\enotum.cat -> hxxps://enotum.cat
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\force.com -> hxxp://force.com
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\force.com -> hxxps://force.com
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\gencat.cat -> hxxps://gencat.cat
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\gob.es -> hxxps://gob.es
IE trusted site: HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\...\ids-zas.de -> hxxp://ids-zas.de
IE trusted site: HKU\S-1-5-21-2985094146-353643522-339492997-1000\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-2985094146-353643522-339492997-1000\...\i02502 -> hxxp://i02502
IE trusted site: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\...\i02502 -> hxxp://i02502

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2020-02-25 19:34 - 000000862 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64
HKU\S-1-5-21-2501339640-696855395-2274928616-2129034-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642874\Control Panel\Desktop\\Wallpaper -> C:\Users\adm.eckard.grobler\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2985094146-353643522-339492997-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2985094146-353643522-339492997-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641821\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2985094146-353643522-339492997-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075642779\Control Panel\Desktop\\Wallpaper -> C:\Users\Temp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2985094146-353643522-339492997-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05232020075641636\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: cAudioFilterAgent => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
MSCONFIG\startupreg: iSkysoft Helper Compact.exe => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{ADAE2E5F-35D0-4A73-BFD9-9A4EEBD63B90}] => (Allow) C:\Program Files (x86)\Teamviewer\Version8\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{0D9E24ED-0DB2-48C8-8518-03F10CA323D7}] => (Allow) C:\Program Files (x86)\Teamviewer\Version8\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{95EFEFF6-3DA5-4DE2-8EFE-630E697081D0}] => (Allow) C:\Program Files (x86)\Teamviewer\Version8\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{DE4FAAA2-D71B-4D20-8E94-968DAC76D98E}] => (Allow) C:\Program Files (x86)\Teamviewer\Version8\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{92DA49DA-58A6-475F-9D70-2C13010D2C16}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe => No File
FirewallRules: [{2B4B48CF-C9DF-4A2F-B2FB-DD1B8479B4EF}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe => No File
FirewallRules: [{D9D344BA-2A53-4D8A-91E2-8B45D6080751}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe => No File
FirewallRules: [{A5EBB5F8-B649-4506-81E5-8A5965D010F7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe => No File
FirewallRules: [{24F04C41-37D1-42BD-941E-3FA80D2EE86B}] => (Allow) C:\Windows\CCM\RemCtrl\CmRcService.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E0B601E-944E-41AC-9055-FE1340EEB8C9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe => No File
FirewallRules: [{866B8828-356C-4F95-9FE4-1D8057296B25}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe => No File
FirewallRules: [{28531015-7E37-474E-A9F7-92F159893DB1}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe => No File
FirewallRules: [{948E57FB-1C4D-45A7-B039-8AC6611022D6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe => No File
FirewallRules: [{547F4709-E7A6-42FB-85CB-B3A2F8E5A947}] => (Allow) C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
FirewallRules: [{50A00137-D63E-4BD9-86A2-5739BCBFD7B2}] => (Allow) C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
FirewallRules: [{5F3949B6-B5C1-4F84-968D-3E0548E3724E}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2014\PCM.exe (Focus Home Interactive -> Cyanide)
FirewallRules: [{082E46C2-18DA-4FFC-B861-EB972B913E8B}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2014\PCM.exe (Focus Home Interactive -> Cyanide)
FirewallRules: [{D76500B4-ECD1-43FC-90A2-4814B76ADA59}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2014\Autorun\Exe\Autorun.exe (Focus Home Interactive -> )
FirewallRules: [{747002E5-11D1-4350-B7FC-F4391497564D}] => (Allow) C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2014\Autorun\Exe\Autorun.exe (Focus Home Interactive -> )
FirewallRules: [TCP Query User{AD21C041-F12C-420A-B220-44AB8DF1254C}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{B60F8A1E-4283-4C22-9295-6C8ABAD71344}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{97A176C2-321C-4AE4-BFDE-AB42EA91432F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{0553B304-54F0-4ED5-AC2C-F1D544B011CE}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{AF335CAA-0015-4289-BF32-59EED8B73D39}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{A13BCFAF-C718-4534-9BB6-E837ED907957}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{388B1896-EAB9-435B-9B3C-4C27213053BE}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{501DB6E6-D6D0-4EE8-8476-E60FCC2D4C10}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42881A99-2D8B-472C-BE41-3BFA48A6B0EB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FEFDDB84-D13A-4B08-BE6B-2E0A7D56DA43}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B873061-8A9A-43D9-B291-71DC1973DDA1}] => (Allow) C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
FirewallRules: [{C8D28468-61F8-40B6-A4C4-24215320909A}] => (Allow) C:\Program Files\Shareaza\Shareaza.exe (Shareaza Development Team) [File not signed]
FirewallRules: [{367925D7-69A1-4DF8-BD7F-567739086071}] => (Allow) C:\Users\user\AppData\Roaming\SystemProcess\SystemProcess.exe => No File
FirewallRules: [{D4C1A59A-5C15-4CBB-A7E7-2198FD865BA1}] => (Allow) C:\Users\user\AppData\Roaming\SystemProcess\SystemProcess.exe => No File
FirewallRules: [TCP Query User{B91FA99E-BA77-484B-8BDE-E3326B0826A8}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe () [File not signed]
FirewallRules: [UDP Query User{E7BD52D2-8D35-4602-AD2D-6E9130517F69}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe () [File not signed]
FirewallRules: [TCP Query User{3ABDC1EE-2910-4A43-A17C-994BC2A1B95B}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catsysdemon.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catsysdemon.exe (Dassault Systemes) [File not signed]
FirewallRules: [UDP Query User{209C0826-D4E4-4109-ADB0-102A4AD70658}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catsysdemon.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catsysdemon.exe (Dassault Systemes) [File not signed]
FirewallRules: [TCP Query User{1CC43727-272F-4071-9D97-4777C59D298C}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe (Dassault Systemes) [File not signed]
FirewallRules: [UDP Query User{1D641515-B966-4C4C-B82E-D2811AB4FF4A}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe (Dassault Systemes) [File not signed]
FirewallRules: [TCP Query User{4F8D4FA1-C9A4-434B-9BC2-521CB67FB948}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe (Dassault Systemes) [File not signed]
FirewallRules: [UDP Query User{992C193F-D652-4957-9856-5FE1F7538A6B}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe (Dassault Systemes) [File not signed]
FirewallRules: [{F43644D6-5FB5-4593-ABC1-86A16F54020B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

28-04-2020 13:38:56 Windows Update
02-05-2020 09:01:33 Windows Update
05-05-2020 20:19:36 Windows Update
11-05-2020 09:03:45 Windows Update
21-05-2020 20:55:21 Windows Update

==================== Faulty Device Manager Devices ============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (05/22/2020 09:03:38 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/22/2020 09:03:38 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/22/2020 09:03:38 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/22/2020 09:03:38 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (05/22/2020 09:03:21 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/22/2020 09:03:21 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/22/2020 09:03:20 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/22/2020 09:03:20 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (05/22/2020 09:41:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{B019CAE0-D910-410F-AD15-5AFA0E58DF61}
and APPID
{AD65A69D-3831-40D7-9629-9B0B50A93843}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (05/22/2020 09:41:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{05D1D5D8-18D1-4B83-85ED-A0F99D53C885}
and APPID
{AD65A69D-3831-40D7-9629-9B0B50A93843}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (05/22/2020 09:41:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{B019CAE0-D910-410F-AD15-5AFA0E58DF61}
and APPID
{AD65A69D-3831-40D7-9629-9B0B50A93843}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (05/22/2020 09:41:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{05D1D5D8-18D1-4B83-85ED-A0F99D53C885}
and APPID
{AD65A69D-3831-40D7-9629-9B0B50A93843}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (05/22/2020 09:40:37 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The SMS Agent Host service hung on starting.

Error: (05/22/2020 09:37:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The %1!s! Update Service (avast) service failed to start due to the following error:
The system cannot find the file specified.

Error: (05/22/2020 09:33:56 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (05/22/2020 09:32:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{05D1D5D8-18D1-4B83-85ED-A0F99D53C885}
and APPID
{AD65A69D-3831-40D7-9629-9B0B50A93843}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2018-05-02 19:12:37.558
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\qcusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-05-02 19:12:37.530
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\qcusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-11-17 10:13:22.791
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tap0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-11-17 10:13:22.702
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tap0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Dell Inc. A11 10/14/2013
Motherboard: Dell Inc. 0M5DCD
Processor: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentage of memory in use: 92%
Total physical RAM: 3993.06 MB
Available physical RAM: 285.43 MB
Total Virtual: 7984.26 MB
Available Virtual: 3501.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:139.01 GB) NTFS

\\?\Volume{bd7eb2fa-0494-11e5-b2cc-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: ED8FC155)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================